Global Token Revocation

Initiate the global revocation of all tokens and sessions for a specified user. This enables external identity providers (IdPs) to trigger a comprehensive sign-out process, including executing IdP-initiated sign-out flows across all apps that are using global token revocation and requiring users to reauthenticate to access protected resources.

Input

Field	Definition	Type	Format	Protocol	Required
User
ID	The ID of an existing Okta user.	Text	opaque	SAML or OIDC	TRUE
ISS	OAuth2 issuer URL for the client app.	Text	iss_sub	OIDC	TRUE
SUB	User ID.	Text	iss_sub	OIDC	TRUE
ISS	Identity Provider issuer from the SAML configuration.	Text	iss_sub	SAML	TRUE
SUB	SAML NameID value.	Text	iss_sub	SAML	TRUE

Output

Field	Definition	Type
Response
Status Code	Result of the operation. The connector returns an HTTP status code that indicates whether the action taken by the card succeeded or failed. For example: A 204 No Content status code indicates that the server has successfully processed that the client's request tokens have been revoked. A 403 Forbidden error indicates that the HTTP request wasn't processed because the necessary permissions were missing. For a full list of possible status codes, see HTTP status codes.	Number

Field

Definition

Type

Response

Status Code

Result of the operation. The connector returns an HTTP status code that indicates whether the action taken by the card succeeded or failed. For example:

A 204 No Content status code indicates that the server has successfully processed that the client's request tokens have been revoked.
A 403 Forbidden error indicates that the HTTP request wasn't processed because the necessary permissions were missing.

For a full list of possible status codes, see HTTP status codes.

Number

Global Token Revocation

Input

Output

Related topics